Nota:
El acceso a esta página requiere autorización. Puede intentar iniciar sesión o cambiar directorios.
El acceso a esta página requiere autorización. Puede intentar cambiar los directorios.
Espacio de nombres: microsoft.graph
Importante: Microsoft admite Intune API /beta, pero están sujetas a cambios más frecuentes. Microsoft recomienda usar la versión v1.0 siempre que sea posible. Compruebe la disponibilidad de una API en la versión v1.0 mediante el selector de versiones.
Nota: la API de Microsoft Graph para Intune requiere una licencia activa de Intune para el espacio empresarial.
Cree un nuevo objeto managedDeviceCertificateState .
Esta API está disponible en las siguientes implementaciones nacionales de nube.
| Servicio global | Gobierno de EE. UU. L4 | Us Government L5 (DOD) | China operada por 21Vianet |
|---|---|---|---|
| ✅ | ✅ | ✅ | ✅ |
Permisos
Se requiere uno de los siguientes permisos para llamar a esta API. Para obtener más información, incluido cómo elegir permisos, vea Permisos.
| Tipo de permiso | Permisos (de menos a más privilegiados) |
|---|---|
| Delegado (cuenta profesional o educativa) | DeviceManagementConfiguration.ReadWrite.All |
| Delegado (cuenta personal de Microsoft) | No admitida. |
| Aplicación | DeviceManagementConfiguration.ReadWrite.All |
Solicitud HTTP
POST /deviceManagement/deviceConfigurations/{deviceConfigurationId}/microsoft.graph.iosPkcsCertificateProfile/managedDeviceCertificateStates
POST /deviceManagement/deviceConfigurations/{deviceConfigurationId}/microsoft.graph.iosScepCertificateProfile/managedDeviceCertificateStates
POST /deviceManagement/deviceConfigurations/{deviceConfigurationId}/microsoft.graph.macOSPkcsCertificateProfile/managedDeviceCertificateStates
POST /deviceManagement/deviceConfigurations/{deviceConfigurationId}/microsoft.graph.macOSScepCertificateProfile/managedDeviceCertificateStates
POST /deviceManagement/deviceConfigurations/{deviceConfigurationId}/microsoft.graph.androidPkcsCertificateProfile/managedDeviceCertificateStates
POST /deviceManagement/deviceConfigurations/{deviceConfigurationId}/microsoft.graph.androidScepCertificateProfile/managedDeviceCertificateStates
POST /deviceManagement/deviceConfigurations/{deviceConfigurationId}/microsoft.graph.iosImportedPFXCertificateProfile/managedDeviceCertificateStates
POST /deviceManagement/deviceConfigurations/{deviceConfigurationId}/microsoft.graph.macOSImportedPFXCertificateProfile/managedDeviceCertificateStates
POST /deviceManagement/deviceConfigurations/{deviceConfigurationId}/microsoft.graph.androidImportedPFXCertificateProfile/managedDeviceCertificateStates
POST /deviceManagement/deviceConfigurations/{deviceConfigurationId}/microsoft.graph.androidForWorkPkcsCertificateProfile/managedDeviceCertificateStates
POST /deviceManagement/deviceConfigurations/{deviceConfigurationId}/microsoft.graph.androidForWorkScepCertificateProfile/managedDeviceCertificateStates
POST /deviceManagement/deviceConfigurations/{deviceConfigurationId}/microsoft.graph.windowsPhone81SCEPCertificateProfile/managedDeviceCertificateStates
POST /deviceManagement/deviceConfigurations/{deviceConfigurationId}/microsoft.graph.aospDeviceOwnerPkcsCertificateProfile/managedDeviceCertificateStates
POST /deviceManagement/deviceConfigurations/{deviceConfigurationId}/microsoft.graph.aospDeviceOwnerScepCertificateProfile/managedDeviceCertificateStates
POST /deviceManagement/deviceConfigurations/{deviceConfigurationId}/microsoft.graph.androidDeviceOwnerPkcsCertificateProfile/managedDeviceCertificateStates
POST /deviceManagement/deviceConfigurations/{deviceConfigurationId}/microsoft.graph.androidDeviceOwnerScepCertificateProfile/managedDeviceCertificateStates
POST /deviceManagement/deviceConfigurations/{deviceConfigurationId}/microsoft.graph.androidWorkProfilePkcsCertificateProfile/managedDeviceCertificateStates
POST /deviceManagement/deviceConfigurations/{deviceConfigurationId}/microsoft.graph.androidWorkProfileScepCertificateProfile/managedDeviceCertificateStates
POST /deviceManagement/deviceConfigurations/{deviceConfigurationId}/microsoft.graph.androidForWorkImportedPFXCertificateProfile/managedDeviceCertificateStates
POST /deviceManagement/deviceConfigurations/{deviceConfigurationId}/microsoft.graph.androidDeviceOwnerImportedPFXCertificateProfile/managedDeviceCertificateStates
POST /deviceManagement/deviceConfigurations/{deviceConfigurationId}/microsoft.graph.windowsWifiEnterpriseEAPConfiguration/identityCertificateForClientAuthentication/microsoft.graph.windows10PkcsCertificateProfile/managedDeviceCertificateStates
POST /deviceManagement/deviceConfigurations/{deviceConfigurationId}/microsoft.graph.windowsWifiEnterpriseEAPConfiguration/identityCertificateForClientAuthentication/microsoft.graph.windows81SCEPCertificateProfile/managedDeviceCertificateStates
POST /deviceManagement/deviceConfigurations/{deviceConfigurationId}/microsoft.graph.windowsWifiEnterpriseEAPConfiguration/identityCertificateForClientAuthentication/microsoft.graph.windows10ImportedPFXCertificateProfile/managedDeviceCertificateStates
POST /deviceManagement/deviceConfigurations/{deviceConfigurationId}/microsoft.graph.windowsWifiEnterpriseEAPConfiguration/identityCertificateForClientAuthentication/microsoft.graph.windowsPhone81ImportedPFXCertificateProfile/managedDeviceCertificateStates
Encabezados de solicitud
| Encabezado | Valor |
|---|---|
| Authorization | {token} de portador. Obligatorio. Obtenga más información sobre la autenticación y la autorización. |
| Aceptar | application/json |
Cuerpo de la solicitud
En el cuerpo de la solicitud, proporcione una representación JSON para el objeto managedDeviceCertificateState.
En la tabla siguiente se muestran las propiedades necesarias al crear managedDeviceCertificateState.
| Propiedad | Tipo | Descripción |
|---|---|---|
| id | Cadena | Clave de la entidad. |
| devicePlatform | devicePlatformType | Plataforma del dispositivo. Los valores posibles son: android, androidForWork, , iOS, windowsPhone81macOS, windows81AndLater, , windows10AndLater, androidWorkProfile, unknown, androidAOSP, androidMobileApplicationManagement, iOSMobileApplicationManagement, , unknownFutureValue, windowsMobileApplicationManagement. |
| certificateKeyUsage | keyUsages | Uso de claves. Los valores posibles son: keyEncipherment, digitalSignature. |
| certificateValidityPeriodUnits | certificateValidityPeriodScale | Unidades de período de validez. Los valores posibles son: days, months, years. |
| certificateIssuanceState | certificateIssuanceStates | Estado de emisión. Los valores posibles son: unknown, challengeIssued, , challengeIssueFailed, requestSubmitFailedrequestCreationFailed, challengeValidationSucceeded, challengeValidationFailed, issueFailed, , issuePending, issued, responseProcessingFailed, responsePending, enrollmentSucceeded, enrollmentNotNeeded, revoked, removedFromCollection, , renewVerified, installFailed, installed, deleteFailed, deleted, , renewalRequested. requested |
| certificateKeyStorageProvider | keyStorageProviderOption | Proveedor de almacenamiento de claves. Los valores posibles son: useTpmKspOtherwiseUseSoftwareKsp, useTpmKspOtherwiseFail, usePassportForWorkKspOtherwiseFail y useSoftwareKsp |
| certificateSubjectNameFormat | subjectNameFormat | Formato de nombre de firmante. Los valores posibles son: commonName, commonNameIncludingEmail, , commonNameAsEmail, commonNameAsIMEIcustom, commonNameAsSerialNumber, commonNameAsAadDeviceId, , commonNameAsIntuneDeviceId. commonNameAsDurableDeviceId |
| certificateSubjectAlternativeNameFormat | subjectAlternativeNameType | Formato de nombre alternativo del firmante. Los valores posibles son: none, emailAddress, userPrincipalName, customAzureADAttribute, domainNameService, universalResourceIdentifier. |
| certificateRevokeStatus | certificateRevocationStatus | Revocar estado. Los valores posibles son: none, pending, issued, failed, revoked. |
| certificateProfileDisplayName | Cadena | Nombre para mostrar del perfil de certificado |
| deviceDisplayName | Cadena | Nombre para mostrar del dispositivo |
| userDisplayName | Cadena | Nombre para mostrar del usuario |
| certificateExpirationDateTime | DateTimeOffset | Fecha de expiración del certificado |
| certificateLastIssuanceStateChangedDateTime | DateTimeOffset | Último cambio de estado de emisión de certificados |
| lastCertificateStateChangeDateTime | DateTimeOffset | Último cambio de estado de emisión de certificados |
| certificateIssuer | Cadena | Emisor |
| certificateThumbprint | Cadena | Huella digital |
| certificateSerialNumber | Cadena | Número de serie |
| certificateKeyLength | Int32 | Longitud de clave |
| certificateEnhancedKeyUsage | Cadena | Uso mejorado de clave |
| certificateValidityPeriod | Int32 | Período de validez |
| certificateSubjectNameFormatString | Cadena | Cadena de formato de nombre de firmante para formatos de nombre de firmante personalizados |
| certificateSubjectAlternativeNameFormatString | Cadena | Cadena de formato de nombre alternativo del firmante para formatos personalizados |
| certificateIssuanceDateTime | DateTimeOffset | Fecha de emisión |
| certificateErrorCode | Int32 | Código de error |
Respuesta
Si se ejecuta correctamente, este método devuelve un 201 Created código de respuesta y un objeto managedDeviceCertificateState en el cuerpo de la respuesta.
Ejemplo
Solicitud
Aquí tiene un ejemplo de la solicitud.
POST https://graph.microsoft.com/beta/deviceManagement/deviceConfigurations/{deviceConfigurationId}/microsoft.graph.iosPkcsCertificateProfile/managedDeviceCertificateStates
Content-type: application/json
Content-length: 1517
{
"@odata.type": "#microsoft.graph.managedDeviceCertificateState",
"devicePlatform": "androidForWork",
"certificateKeyUsage": "digitalSignature",
"certificateValidityPeriodUnits": "months",
"certificateIssuanceState": "challengeIssued",
"certificateKeyStorageProvider": "useTpmKspOtherwiseFail",
"certificateSubjectNameFormat": "commonNameIncludingEmail",
"certificateSubjectAlternativeNameFormat": "emailAddress",
"certificateRevokeStatus": "pending",
"certificateProfileDisplayName": "Certificate Profile Display Name value",
"deviceDisplayName": "Device Display Name value",
"userDisplayName": "User Display Name value",
"certificateExpirationDateTime": "2017-01-01T00:02:14.9489247-08:00",
"certificateLastIssuanceStateChangedDateTime": "2017-01-01T00:00:27.7468732-08:00",
"lastCertificateStateChangeDateTime": "2017-01-01T00:01:10.7144639-08:00",
"certificateIssuer": "Certificate Issuer value",
"certificateThumbprint": "Certificate Thumbprint value",
"certificateSerialNumber": "Certificate Serial Number value",
"certificateKeyLength": 4,
"certificateEnhancedKeyUsage": "Certificate Enhanced Key Usage value",
"certificateValidityPeriod": 9,
"certificateSubjectNameFormatString": "Certificate Subject Name Format String value",
"certificateSubjectAlternativeNameFormatString": "Certificate Subject Alternative Name Format String value",
"certificateIssuanceDateTime": "2016-12-31T23:59:41.5044473-08:00",
"certificateErrorCode": 4
}
Respuesta
Aquí tiene un ejemplo de la respuesta. Nota: Es posible que el objeto de respuesta que aparezca aquí esté truncado para abreviar. Todas las propiedades se devolverán desde una llamada real.
HTTP/1.1 201 Created
Content-Type: application/json
Content-Length: 1566
{
"@odata.type": "#microsoft.graph.managedDeviceCertificateState",
"id": "d99bc884-c884-d99b-84c8-9bd984c89bd9",
"devicePlatform": "androidForWork",
"certificateKeyUsage": "digitalSignature",
"certificateValidityPeriodUnits": "months",
"certificateIssuanceState": "challengeIssued",
"certificateKeyStorageProvider": "useTpmKspOtherwiseFail",
"certificateSubjectNameFormat": "commonNameIncludingEmail",
"certificateSubjectAlternativeNameFormat": "emailAddress",
"certificateRevokeStatus": "pending",
"certificateProfileDisplayName": "Certificate Profile Display Name value",
"deviceDisplayName": "Device Display Name value",
"userDisplayName": "User Display Name value",
"certificateExpirationDateTime": "2017-01-01T00:02:14.9489247-08:00",
"certificateLastIssuanceStateChangedDateTime": "2017-01-01T00:00:27.7468732-08:00",
"lastCertificateStateChangeDateTime": "2017-01-01T00:01:10.7144639-08:00",
"certificateIssuer": "Certificate Issuer value",
"certificateThumbprint": "Certificate Thumbprint value",
"certificateSerialNumber": "Certificate Serial Number value",
"certificateKeyLength": 4,
"certificateEnhancedKeyUsage": "Certificate Enhanced Key Usage value",
"certificateValidityPeriod": 9,
"certificateSubjectNameFormatString": "Certificate Subject Name Format String value",
"certificateSubjectAlternativeNameFormatString": "Certificate Subject Alternative Name Format String value",
"certificateIssuanceDateTime": "2016-12-31T23:59:41.5044473-08:00",
"certificateErrorCode": 4
}